{"payload":{"feedbackUrl":"https://github.com/orgs/community/discussions/53140","repo":{"id":145884970,"defaultBranch":"main","name":"liquid-stats","ownerLogin":"cfrome77","currentUserCanPush":false,"isFork":false,"isEmpty":false,"createdAt":"2018-08-23T17:15:15.000Z","ownerAvatar":"https://avatars.githubusercontent.com/u/16628337?v=4","public":true,"private":false,"isOrgOwned":false},"refInfo":{"name":"","listCacheKey":"v0:1718532364.0","currentOid":""},"activityList":{"items":[{"before":null,"after":"f5f12dc7c06278d9fcb32ad9f6c1e3c2ff09ccbf","ref":"refs/heads/dependabot/npm_and_yarn/braces-3.0.3","pushedAt":"2024-06-16T10:06:04.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"Bump braces from 3.0.2 to 3.0.3\n\nBumps [braces](https://github.com/micromatch/braces) from 3.0.2 to 3.0.3.\n- [Changelog](https://github.com/micromatch/braces/blob/master/CHANGELOG.md)\n- [Commits](https://github.com/micromatch/braces/compare/3.0.2...3.0.3)\n\n---\nupdated-dependencies:\n- dependency-name: braces\n dependency-type: indirect\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"Bump braces from 3.0.2 to 3.0.3"}},{"before":"4fd32543c7bc64a5ca4201432ccc8acfb55d854d","after":null,"ref":"refs/heads/dependabot/npm_and_yarn/multi-31b6d69c1a","pushedAt":"2024-05-04T20:12:30.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"}},{"before":"4c57972304c2f842ce6621e88d3fcc66ba3744a0","after":"ef997b084bc9022726ac7cc8388f04c9badfd874","ref":"refs/heads/main","pushedAt":"2024-05-04T20:12:23.000Z","pushType":"pr_merge","commitsCount":2,"pusher":{"login":"cfrome77","name":"Chris Frome","path":"/cfrome77","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/16628337?s=80&v=4"},"commit":{"message":"Bump webpack-dev-middleware and @angular-devkit/build-angular (#47)\n\nBumps\r\n[webpack-dev-middleware](https://github.com/webpack/webpack-dev-middleware)\r\nto 6.1.2 and updates ancestor dependency\r\n[@angular-devkit/build-angular](https://github.com/angular/angular-cli).\r\nThese dependencies need to be updated together.\r\n\r\nUpdates `webpack-dev-middleware` from 5.3.3 to 6.1.2\r\n
\r\nRelease notes\r\n

Sourced from webpack-dev-middleware's\r\nreleases.

\r\n
\r\n

v6.1.2

\r\n

6.1.2\r\n(2024-03-20)

\r\n

Bug Fixes

\r\n
    \r\n
  • security: do not allow to read files above (#1778)\r\n(9670b34)
    • \r\n
\r\n

v6.1.1

\r\n

6.1.1\r\n(2023-05-16)

\r\n

Bug Fixes

\r\n
    \r\n
  • types: methods should be string array\r\n(#1550)\r\n(41b2f77)
    • \r\n
\r\n

v6.1.0

\r\n

6.1.0\r\n(2023-05-03)

\r\n

Features

\r\n
    \r\n
  • added mimeTypeDefault option (#1527)\r\n(503d290)
    • \r\n
  • added modifyResponseData option (#1529)\r\n(35dac70)
    • \r\n
\r\n

Bug Fixes

\r\n
    \r\n
  • don't use memory-fs when writeToDisk is\r\ntrue (#1537)\r\n(852245e)
    • \r\n
  • faster startup time (f5f033b)
    • \r\n
\r\n

v6.0.2

\r\n

6.0.2\r\n(2023-03-19)

\r\n

Bug Fixes

\r\n
    \r\n
  • make webpack optional peerDep (#1488)\r\n(81c39ba)
    • \r\n
\r\n

v6.0.1

\r\n

6.0.1\r\n(2022-11-28)

\r\n

Bug Fixes

\r\n
    \r\n
  • update schema for index and methods\r\nproperties (#1397)\r\n(cda328e)
    • \r\n
\r\n

v6.0.0

\r\n

6.0.0\r\n(2022-11-20)

\r\n\r\n
\r\n

... (truncated)

\r\n
\r\n
\r\nChangelog\r\n

Sourced from webpack-dev-middleware's\r\nchangelog.

\r\n
\r\n

6.1.2\r\n(2024-03-20)

\r\n

Bug Fixes

\r\n
    \r\n
  • security: do not allow to read files above (#1778)\r\n(9670b34)
    • \r\n
\r\n

6.1.1\r\n(2023-05-16)

\r\n

Bug Fixes

\r\n
    \r\n
  • types: methods should be string array\r\n(#1550)\r\n(41b2f77)
    • \r\n
\r\n

6.1.0\r\n(2023-05-03)

\r\n

Features

\r\n
    \r\n
  • added mimeTypeDefault option (#1527)\r\n(503d290)
    • \r\n
  • added modifyResponseData option (#1529)\r\n(35dac70)
    • \r\n
\r\n

Bug Fixes

\r\n
    \r\n
  • don't use memory-fs when writeToDisk is\r\ntrue (#1537)\r\n(852245e)
    • \r\n
  • faster startup time (f5f033b)
    • \r\n
\r\n

6.0.2\r\n(2023-03-19)

\r\n

Bug Fixes

\r\n
    \r\n
  • make webpack optional peerDep (#1488)\r\n(81c39ba)
    • \r\n
\r\n

6.0.1\r\n(2022-11-28)

\r\n

Bug Fixes

\r\n
    \r\n
  • update schema for index and methods\r\nproperties (#1397)\r\n(cda328e)
    • \r\n
\r\n

6.0.0\r\n(2022-11-20)

\r\n

⚠ BREAKING CHANGES

\r\n
    \r\n
  • minimum supported webpack version is 5.0.0
    • \r\n
  • minimum supported Nodejs version is 14.15.0
    • \r\n
\r\n
\r\n
\r\n
\r\nCommits\r\n\r\n
\r\n
\r\n\r\nUpdates `@angular-devkit/build-angular` from 14.1.3 to 17.3.6\r\n
\r\nRelease notes\r\n

Sourced from @​angular-devkit/build-angular's\r\nreleases.

\r\n
\r\n

v17.3.6

\r\n

\r\n

17.3.6 (2024-04-25)

\r\n

@​angular-devkit/build-angular

\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n
CommitDescription
properly configure headers for media resources and HTML page
\r\n

v17.3.5

\r\n

\r\n

17.3.5 (2024-04-17)

\r\n

@​angular-devkit/build-angular

\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n
CommitDescription
address Unable to deserialize cloned data issue with\r\nYarn PnP
remove type="text/css" from\r\nstyle tag
\r\n

v17.3.4

\r\n

\r\n

17.3.4 (2024-04-11)

\r\n

@​angular-devkit/build-angular

\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n
CommitDescription
ensure esbuild-based builders exclusively produce ESM output
\r\n

v17.3.3

\r\n

@​schematics/angular

\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n
CommitDescription
Revert "fix(@​schematics/angular): rename SSR port\r\nenv variable"
\r\n

v17.3.2

\r\n

\r\n

17.3.2 (2024-03-25)

\r\n

@​schematics/angular

\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n
CommitDescription
rename SSR port env variable
\r\n

@​angular-devkit/build-angular

\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n
CommitDescription
Internal server error: Invalid URL when using a non\r\nlocalhost IP
ensure proper resolution of linked SCSS files
service-worker references non-existent named index output
update webpack-dev-middleware to\r\n6.1.2
\r\n

v17.3.1

\r\n

\r\n

17.3.1 (2024-03-20)

\r\n\r\n
\r\n

... (truncated)

\r\n
\r\n
\r\nChangelog\r\n

Sourced from @​angular-devkit/build-angular's\r\nchangelog.

\r\n
\r\n

17.3.6 (2024-04-25)

\r\n

@​angular-devkit/build-angular

\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n
CommitTypeDescription
dcec59799fixproperly configure headers for media resources and HTML page
\r\n\r\n

\r\n

18.0.0-next.3 (2024-04-17)

\r\n

Breaking Changes

\r\n

@​angular/cli

\r\n
    \r\n
  • The ng doc command has been removed without a\r\nreplacement. To perform searches, please visit www.angular.dev
    • \r\n
\r\n

@​angular-devkit/build-angular

\r\n
    \r\n
  • \r\n

    By default, the index.html file is no longer emitted in the browser\r\ndirectory when using the application builder with SSR. Instead, an\r\nindex.csr.html file is emitted. This change is implemented because in\r\nmany cases server and cloud providers incorrectly treat the index.html\r\nfile as a statically generated page. If you still require the old\r\nbehavior, you can use the index option to specify the\r\noutput file name.

    \r\n
    "architect": {\r\n  "build": {\r\n"builder":\r\n"@angular-devkit/build-angular:application",\r\n    "options": {\r\n      "outputPath": "dist/my-app",\r\n      "index": {\r\n        "input": "src/index.html",\r\n        "output": "index.html"\r\n      }\r\n    }\r\n  }\r\n}\r\n
    \r\n
    • \r\n
\r\n

@​angular/cli

\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n
CommitTypeDescription
03eee0545refactorremove ng doc command
\r\n

@​angular-devkit/build-angular

\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n
CommitTypeDescription
83d1d233afeatenhance Sass rebasing importer for resources URL defined in\r\nvariables and handling of external paths
\r\n\r\n
\r\n

... (truncated)

\r\n
\r\n
\r\nCommits\r\n\r\n
\r\n
\r\n\r\n\r\nDependabot will resolve any conflicts with this PR as long as you don't\r\nalter it yourself. You can also trigger a rebase manually by commenting\r\n`@dependabot rebase`.\r\n\r\n[//]: # (dependabot-automerge-start)\r\n[//]: # (dependabot-automerge-end)\r\n\r\n---\r\n\r\n
\r\nDependabot commands and options\r\n
\r\n\r\nYou can trigger Dependabot actions by commenting on this PR:\r\n- `@dependabot rebase` will rebase this PR\r\n- `@dependabot recreate` will recreate this PR, overwriting any edits\r\nthat have been made to it\r\n- `@dependabot merge` will merge this PR after your CI passes on it\r\n- `@dependabot squash and merge` will squash and merge this PR after\r\nyour CI passes on it\r\n- `@dependabot cancel merge` will cancel a previously requested merge\r\nand block automerging\r\n- `@dependabot reopen` will reopen this PR if it is closed\r\n- `@dependabot close` will close this PR and stop Dependabot recreating\r\nit. You can achieve the same result by closing it manually\r\n- `@dependabot show ignore conditions` will show all\r\nof the ignore conditions of the specified dependency\r\n- `@dependabot ignore this major version` will close this PR and stop\r\nDependabot creating any more for this major version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this minor version` will close this PR and stop\r\nDependabot creating any more for this minor version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this dependency` will close this PR and stop\r\nDependabot creating any more for this dependency (unless you reopen the\r\nPR or upgrade to it yourself)\r\nYou can disable automated security fix PRs for this repo from the\r\n[Security Alerts\r\npage](https://github.com/cfrome77/liquid-stats/network/alerts).\r\n\r\n
","shortMessageHtmlLink":"Bump webpack-dev-middleware and @angular-devkit/build-angular (#47)"}},{"before":null,"after":"4fd32543c7bc64a5ca4201432ccc8acfb55d854d","ref":"refs/heads/dependabot/npm_and_yarn/multi-31b6d69c1a","pushedAt":"2024-05-04T20:08:39.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"Bump webpack-dev-middleware and @angular-devkit/build-angular\n\nBumps [webpack-dev-middleware](https://github.com/webpack/webpack-dev-middleware) to 6.1.2 and updates ancestor dependency [@angular-devkit/build-angular](https://github.com/angular/angular-cli). These dependencies need to be updated together.\n\n\nUpdates `webpack-dev-middleware` from 5.3.3 to 6.1.2\n- [Release notes](https://github.com/webpack/webpack-dev-middleware/releases)\n- [Changelog](https://github.com/webpack/webpack-dev-middleware/blob/v6.1.2/CHANGELOG.md)\n- [Commits](https://github.com/webpack/webpack-dev-middleware/compare/v5.3.3...v6.1.2)\n\nUpdates `@angular-devkit/build-angular` from 14.1.3 to 17.3.6\n- [Release notes](https://github.com/angular/angular-cli/releases)\n- [Changelog](https://github.com/angular/angular-cli/blob/main/CHANGELOG.md)\n- [Commits](https://github.com/angular/angular-cli/compare/14.1.3...17.3.6)\n\n---\nupdated-dependencies:\n- dependency-name: webpack-dev-middleware\n dependency-type: indirect\n- dependency-name: \"@angular-devkit/build-angular\"\n dependency-type: direct:development\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"Bump webpack-dev-middleware and @angular-devkit/build-angular"}},{"before":"53b30e366642e78f2bc1a89f857f76cc838377eb","after":null,"ref":"refs/heads/dependabot/npm_and_yarn/follow-redirects-1.15.6","pushedAt":"2024-05-04T20:07:40.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"}},{"before":"28f5565d4b5366d7ebc142fc2074149a1fc013dc","after":"4c57972304c2f842ce6621e88d3fcc66ba3744a0","ref":"refs/heads/main","pushedAt":"2024-05-04T20:07:34.000Z","pushType":"pr_merge","commitsCount":2,"pusher":{"login":"cfrome77","name":"Chris Frome","path":"/cfrome77","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/16628337?s=80&v=4"},"commit":{"message":"Bump follow-redirects from 1.15.4 to 1.15.6 (#45)\n\nBumps\r\n[follow-redirects](https://github.com/follow-redirects/follow-redirects)\r\nfrom 1.15.4 to 1.15.6.\r\n
\r\nCommits\r\n
    \r\n
  • 35a517c\r\nRelease version 1.15.6 of the npm package.
    • \r\n
  • c4f847f\r\nDrop Proxy-Authorization across hosts.
    • \r\n
  • 8526b4a\r\nUse GitHub for disclosure.
    • \r\n
  • b1677ce\r\nRelease version 1.15.5 of the npm package.
    • \r\n
  • d8914f7\r\nPreserve fragment in responseUrl.
    • \r\n
  • See full diff in compare\r\nview
    • \r\n
\r\n
\r\n
\r\n\r\n\r\n[![Dependabot compatibility\r\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=follow-redirects&package-manager=npm_and_yarn&previous-version=1.15.4&new-version=1.15.6)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\r\n\r\nYou can trigger a rebase of this PR by commenting `@dependabot rebase`.\r\n\r\n[//]: # (dependabot-automerge-start)\r\n[//]: # (dependabot-automerge-end)\r\n\r\n---\r\n\r\n
\r\nDependabot commands and options\r\n
\r\n\r\nYou can trigger Dependabot actions by commenting on this PR:\r\n- `@dependabot rebase` will rebase this PR\r\n- `@dependabot recreate` will recreate this PR, overwriting any edits\r\nthat have been made to it\r\n- `@dependabot merge` will merge this PR after your CI passes on it\r\n- `@dependabot squash and merge` will squash and merge this PR after\r\nyour CI passes on it\r\n- `@dependabot cancel merge` will cancel a previously requested merge\r\nand block automerging\r\n- `@dependabot reopen` will reopen this PR if it is closed\r\n- `@dependabot close` will close this PR and stop Dependabot recreating\r\nit. You can achieve the same result by closing it manually\r\n- `@dependabot show ignore conditions` will show all\r\nof the ignore conditions of the specified dependency\r\n- `@dependabot ignore this major version` will close this PR and stop\r\nDependabot creating any more for this major version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this minor version` will close this PR and stop\r\nDependabot creating any more for this minor version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this dependency` will close this PR and stop\r\nDependabot creating any more for this dependency (unless you reopen the\r\nPR or upgrade to it yourself)\r\nYou can disable automated security fix PRs for this repo from the\r\n[Security Alerts\r\npage](https://github.com/cfrome77/liquid-stats/network/alerts).\r\n\r\n
\r\n\r\n> **Note**\r\n> Automatic rebases have been disabled on this pull request as it has\r\nbeen open for over 30 days.","shortMessageHtmlLink":"Bump follow-redirects from 1.15.4 to 1.15.6 (#45)"}},{"before":"f16c389da2fc1f55c478701332229a56413092c2","after":null,"ref":"refs/heads/dependabot/npm_and_yarn/express-4.19.2","pushedAt":"2024-05-04T20:07:20.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"}},{"before":"2e9ff2a5fe04b71d062e80d4d956dc5d9d12e75e","after":"28f5565d4b5366d7ebc142fc2074149a1fc013dc","ref":"refs/heads/main","pushedAt":"2024-05-04T20:07:12.000Z","pushType":"pr_merge","commitsCount":2,"pusher":{"login":"cfrome77","name":"Chris Frome","path":"/cfrome77","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/16628337?s=80&v=4"},"commit":{"message":"Bump express from 4.18.1 to 4.19.2 (#46)\n\nBumps [express](https://github.com/expressjs/express) from 4.18.1 to\r\n4.19.2.\r\n
\r\nRelease notes\r\n

Sourced from express's\r\nreleases.

\r\n
\r\n

4.19.2

\r\n

What's Changed

\r\n
    \r\n
  • Improved\r\nfix for open redirect allow list bypass
    • \r\n
\r\n

Full Changelog: https://github.com/expressjs/express/compare/4.19.1...4.19.2

\r\n

4.19.1

\r\n

What's Changed

\r\n
    \r\n
  • Fix ci after location patch by @​wesleytodd in expressjs/express#5552
    • \r\n
  • fixed un-edited version in history.md for 4.19.0 by @​wesleytodd in expressjs/express#5556
    • \r\n
\r\n

Full Changelog: https://github.com/expressjs/express/compare/4.19.0...4.19.1

\r\n

4.19.0

\r\n

What's Changed

\r\n
    \r\n
  • fix typo in release date by @​UlisesGascon\r\nin expressjs/express#5527
    • \r\n
  • docs: nominating @​wesleytodd to be\r\nproject captian by @​wesleytodd in expressjs/express#5511
    • \r\n
  • docs: loosen TC activity rules by @​wesleytodd in expressjs/express#5510
    • \r\n
  • Add note on how to update docs for new release by @​crandmck in expressjs/express#5541
    • \r\n
  • Prevent\r\nopen redirect allow list bypass due to encodeurl
    • \r\n
  • Release 4.19.0 by @​wesleytodd in expressjs/express#5551
    • \r\n
\r\n

New Contributors

\r\n
    \r\n
  • @​crandmck\r\nmade their first contribution in expressjs/express#5541
    • \r\n
\r\n

Full Changelog: https://github.com/expressjs/express/compare/4.18.3...4.19.0

\r\n

4.18.3

\r\n

Main Changes

\r\n
    \r\n
  • Fix routing requests without method
    • \r\n
  • deps: body-parser@1.20.2\r\n
      \r\n
    • Fix strict json error message on Node.js 19+
      • \r\n
    • deps: content-type@~1.0.5
      • \r\n
    • deps: raw-body@2.5.2
      • \r\n
    \r\n
    • \r\n
\r\n

Other Changes

\r\n
    \r\n
  • Use https: protocol instead of deprecated git: protocol by @​vcsjones in expressjs/express#5032
    • \r\n
  • build: Node.js@16.18 and Node.js@18.12 by @​abenhamdine in\r\nexpressjs/express#5034
    • \r\n
  • ci: update actions/checkout to v3 by @​armujahid in expressjs/express#5027
    • \r\n
  • test: remove unused function arguments in params by @​raksbisht in expressjs/express#5124
    • \r\n
  • Remove unused originalIndex from acceptParams by @​raksbisht in expressjs/express#5119
    • \r\n
  • Fixed typos by @​raksbisht in expressjs/express#5117
    • \r\n
  • examples: remove unused params by @​raksbisht in expressjs/express#5113
    • \r\n
  • fix: parameter str is not described in JSDoc by @​raksbisht in expressjs/express#5130
    • \r\n
  • fix: typos in History.md by @​raksbisht in expressjs/express#5131
    • \r\n
  • build : add Node.js@19.7 by @​abenhamdine in\r\nexpressjs/express#5028
    • \r\n
  • test: remove unused function arguments in params by @​raksbisht in expressjs/express#5137
    • \r\n
\r\n\r\n
\r\n

... (truncated)

\r\n
\r\n
\r\nChangelog\r\n

Sourced from express's\r\nchangelog.

\r\n
\r\n

4.19.2 / 2024-03-25

\r\n
    \r\n
  • Improved fix for open redirect allow list bypass
    • \r\n
\r\n

4.19.1 / 2024-03-20

\r\n
    \r\n
  • Allow passing non-strings to res.location with new encoding handling\r\nchecks
    • \r\n
\r\n

4.19.0 / 2024-03-20

\r\n
    \r\n
  • Prevent open redirect allow list bypass due to encodeurl
    • \r\n
  • deps: cookie@0.6.0
    • \r\n
\r\n

4.18.3 / 2024-02-29

\r\n
    \r\n
  • Fix routing requests without method
    • \r\n
  • deps: body-parser@1.20.2\r\n
      \r\n
    • Fix strict json error message on Node.js 19+
      • \r\n
    • deps: content-type@~1.0.5
      • \r\n
    • deps: raw-body@2.5.2
      • \r\n
    \r\n
    • \r\n
  • deps: cookie@0.6.0\r\n
      \r\n
    • Add partitioned option
      • \r\n
    \r\n
    • \r\n
\r\n

4.18.2 / 2022-10-08

\r\n
    \r\n
  • Fix regression routing a large stack in a single route
    • \r\n
  • deps: body-parser@1.20.1\r\n
      \r\n
    • deps: qs@6.11.0
      • \r\n
    • perf: remove unnecessary object clone
      • \r\n
    \r\n
    • \r\n
  • deps: qs@6.11.0
    • \r\n
\r\n
\r\n
\r\n
\r\nCommits\r\n
    \r\n
  • 04bc627\r\n4.19.2
    • \r\n
  • da4d763\r\nImproved fix for open redirect allow list bypass
    • \r\n
  • 4f0f6cc\r\n4.19.1
    • \r\n
  • a003cfa\r\nAllow passing non-strings to res.location with new encoding handling\r\nchecks f...
    • \r\n
  • a1fa90f\r\nfixed un-edited version in history.md for 4.19.0
    • \r\n
  • 11f2b1d\r\nbuild: fix build due to inconsistent supertest behavior in older\r\nversions
    • \r\n
  • 084e365\r\n4.19.0
    • \r\n
  • 0867302\r\nPrevent open redirect allow list bypass due to encodeurl
    • \r\n
  • 567c9c6\r\nAdd note on how to update docs for new release (#5541)
    • \r\n
  • 69a4cf2\r\ndeps: cookie@0.6.0
    • \r\n
  • Additional commits viewable in compare\r\nview
    • \r\n
\r\n
\r\n
\r\nMaintainer changes\r\n

This version was pushed to npm by wesleytodd, a new releaser\r\nfor express since your current version.

\r\n
\r\n
\r\n\r\n\r\n[![Dependabot compatibility\r\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=express&package-manager=npm_and_yarn&previous-version=4.18.1&new-version=4.19.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\r\n\r\nDependabot will resolve any conflicts with this PR as long as you don't\r\nalter it yourself. You can also trigger a rebase manually by commenting\r\n`@dependabot rebase`.\r\n\r\n[//]: # (dependabot-automerge-start)\r\n[//]: # (dependabot-automerge-end)\r\n\r\n---\r\n\r\n
\r\nDependabot commands and options\r\n
\r\n\r\nYou can trigger Dependabot actions by commenting on this PR:\r\n- `@dependabot rebase` will rebase this PR\r\n- `@dependabot recreate` will recreate this PR, overwriting any edits\r\nthat have been made to it\r\n- `@dependabot merge` will merge this PR after your CI passes on it\r\n- `@dependabot squash and merge` will squash and merge this PR after\r\nyour CI passes on it\r\n- `@dependabot cancel merge` will cancel a previously requested merge\r\nand block automerging\r\n- `@dependabot reopen` will reopen this PR if it is closed\r\n- `@dependabot close` will close this PR and stop Dependabot recreating\r\nit. You can achieve the same result by closing it manually\r\n- `@dependabot show ignore conditions` will show all\r\nof the ignore conditions of the specified dependency\r\n- `@dependabot ignore this major version` will close this PR and stop\r\nDependabot creating any more for this major version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this minor version` will close this PR and stop\r\nDependabot creating any more for this minor version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this dependency` will close this PR and stop\r\nDependabot creating any more for this dependency (unless you reopen the\r\nPR or upgrade to it yourself)\r\nYou can disable automated security fix PRs for this repo from the\r\n[Security Alerts\r\npage](https://github.com/cfrome77/liquid-stats/network/alerts).\r\n\r\n
","shortMessageHtmlLink":"Bump express from 4.18.1 to 4.19.2 (#46)"}},{"before":null,"after":"f16c389da2fc1f55c478701332229a56413092c2","ref":"refs/heads/dependabot/npm_and_yarn/express-4.19.2","pushedAt":"2024-03-28T08:55:25.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"Bump express from 4.18.1 to 4.19.2\n\nBumps [express](https://github.com/expressjs/express) from 4.18.1 to 4.19.2.\n- [Release notes](https://github.com/expressjs/express/releases)\n- [Changelog](https://github.com/expressjs/express/blob/master/History.md)\n- [Commits](https://github.com/expressjs/express/compare/4.18.1...4.19.2)\n\n---\nupdated-dependencies:\n- dependency-name: express\n dependency-type: direct:production\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"Bump express from 4.18.1 to 4.19.2"}},{"before":null,"after":"53b30e366642e78f2bc1a89f857f76cc838377eb","ref":"refs/heads/dependabot/npm_and_yarn/follow-redirects-1.15.6","pushedAt":"2024-03-16T23:16:56.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"Bump follow-redirects from 1.15.4 to 1.15.6\n\nBumps [follow-redirects](https://github.com/follow-redirects/follow-redirects) from 1.15.4 to 1.15.6.\n- [Release notes](https://github.com/follow-redirects/follow-redirects/releases)\n- [Commits](https://github.com/follow-redirects/follow-redirects/compare/v1.15.4...v1.15.6)\n\n---\nupdated-dependencies:\n- dependency-name: follow-redirects\n dependency-type: indirect\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"Bump follow-redirects from 1.15.4 to 1.15.6"}},{"before":"88109a4d4890ce565b9827b4b80339f17a8e1e01","after":"2e9ff2a5fe04b71d062e80d4d956dc5d9d12e75e","ref":"refs/heads/main","pushedAt":"2024-03-06T21:39:55.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"cfrome77","name":"Chris Frome","path":"/cfrome77","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/16628337?s=80&v=4"},"commit":{"message":"Add rating tooltip for checkins","shortMessageHtmlLink":"Add rating tooltip for checkins"}},{"before":"c751a557329b53faa4d2d353b358f19ec36621ee","after":null,"ref":"refs/heads/dependabot/npm_and_yarn/ip-2.0.1","pushedAt":"2024-02-28T22:39:07.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"}},{"before":"58ccaf999e13ccc18f1e9e3902836aa7aa0afcc4","after":"88109a4d4890ce565b9827b4b80339f17a8e1e01","ref":"refs/heads/main","pushedAt":"2024-02-28T22:39:00.000Z","pushType":"pr_merge","commitsCount":2,"pusher":{"login":"cfrome77","name":"Chris Frome","path":"/cfrome77","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/16628337?s=80&v=4"},"commit":{"message":"Bump ip from 2.0.0 to 2.0.1 (#44)\n\nBumps [ip](https://github.com/indutny/node-ip) from 2.0.0 to 2.0.1.\r\n
\r\nCommits\r\n
    \r\n
  • 3b0994a\r\n2.0.1
    • \r\n
  • 32f468f\r\nlib: fixed CVE-2023-42282 and added unit test
    • \r\n
  • See full diff in compare\r\nview
    • \r\n
\r\n
\r\n
\r\n\r\n\r\n[![Dependabot compatibility\r\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=ip&package-manager=npm_and_yarn&previous-version=2.0.0&new-version=2.0.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\r\n\r\nDependabot will resolve any conflicts with this PR as long as you don't\r\nalter it yourself. You can also trigger a rebase manually by commenting\r\n`@dependabot rebase`.\r\n\r\n[//]: # (dependabot-automerge-start)\r\n[//]: # (dependabot-automerge-end)\r\n\r\n---\r\n\r\n
\r\nDependabot commands and options\r\n
\r\n\r\nYou can trigger Dependabot actions by commenting on this PR:\r\n- `@dependabot rebase` will rebase this PR\r\n- `@dependabot recreate` will recreate this PR, overwriting any edits\r\nthat have been made to it\r\n- `@dependabot merge` will merge this PR after your CI passes on it\r\n- `@dependabot squash and merge` will squash and merge this PR after\r\nyour CI passes on it\r\n- `@dependabot cancel merge` will cancel a previously requested merge\r\nand block automerging\r\n- `@dependabot reopen` will reopen this PR if it is closed\r\n- `@dependabot close` will close this PR and stop Dependabot recreating\r\nit. You can achieve the same result by closing it manually\r\n- `@dependabot show ignore conditions` will show all\r\nof the ignore conditions of the specified dependency\r\n- `@dependabot ignore this major version` will close this PR and stop\r\nDependabot creating any more for this major version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this minor version` will close this PR and stop\r\nDependabot creating any more for this minor version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this dependency` will close this PR and stop\r\nDependabot creating any more for this dependency (unless you reopen the\r\nPR or upgrade to it yourself)\r\nYou can disable automated security fix PRs for this repo from the\r\n[Security Alerts\r\npage](https://github.com/cfrome77/liquid-stats/network/alerts).\r\n\r\n
","shortMessageHtmlLink":"Bump ip from 2.0.0 to 2.0.1 (#44)"}},{"before":null,"after":"c751a557329b53faa4d2d353b358f19ec36621ee","ref":"refs/heads/dependabot/npm_and_yarn/ip-2.0.1","pushedAt":"2024-02-20T19:00:41.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"Bump ip from 2.0.0 to 2.0.1\n\nBumps [ip](https://github.com/indutny/node-ip) from 2.0.0 to 2.0.1.\n- [Commits](https://github.com/indutny/node-ip/compare/v2.0.0...v2.0.1)\n\n---\nupdated-dependencies:\n- dependency-name: ip\n dependency-type: indirect\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"Bump ip from 2.0.0 to 2.0.1"}},{"before":"1df58e680e4c87d9a32d49b54a50f0637a8be68f","after":null,"ref":"refs/heads/dependabot/npm_and_yarn/follow-redirects-1.15.4","pushedAt":"2024-01-21T20:06:59.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"}},{"before":"188005837ac5ce979f791344e81009e07a0a1106","after":"58ccaf999e13ccc18f1e9e3902836aa7aa0afcc4","ref":"refs/heads/main","pushedAt":"2024-01-21T20:06:52.000Z","pushType":"pr_merge","commitsCount":2,"pusher":{"login":"cfrome77","name":"Chris Frome","path":"/cfrome77","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/16628337?s=80&v=4"},"commit":{"message":"Bump follow-redirects from 1.15.1 to 1.15.4 (#43)\n\nBumps\r\n[follow-redirects](https://github.com/follow-redirects/follow-redirects)\r\nfrom 1.15.1 to 1.15.4.\r\n
\r\nCommits\r\n
    \r\n
  • 6585820\r\nRelease version 1.15.4 of the npm package.
    • \r\n
  • 7a6567e\r\nDisallow bracketed hostnames.
    • \r\n
  • 05629af\r\nPrefer native URL instead of deprecated url.parse.
    • \r\n
  • 1cba8e8\r\nPrefer native URL instead of legacy url.resolve.
    • \r\n
  • 72bc2a4\r\nSimplify _processResponse error handling.
    • \r\n
  • 3d42aec\r\nAdd bracket tests.
    • \r\n
  • bcbb096\r\nDo not directly set Error properties.
    • \r\n
  • 192dbe7\r\nRelease version 1.15.3 of the npm package.
    • \r\n
  • bd8c81e\r\nFix resource leak on destroy.
    • \r\n
  • 9c728c3\r\nSplit linting and testing.
    • \r\n
  • Additional commits viewable in compare\r\nview
    • \r\n
\r\n
\r\n
\r\n\r\n\r\n[![Dependabot compatibility\r\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=follow-redirects&package-manager=npm_and_yarn&previous-version=1.15.1&new-version=1.15.4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\r\n\r\nDependabot will resolve any conflicts with this PR as long as you don't\r\nalter it yourself. You can also trigger a rebase manually by commenting\r\n`@dependabot rebase`.\r\n\r\n[//]: # (dependabot-automerge-start)\r\n[//]: # (dependabot-automerge-end)\r\n\r\n---\r\n\r\n
\r\nDependabot commands and options\r\n
\r\n\r\nYou can trigger Dependabot actions by commenting on this PR:\r\n- `@dependabot rebase` will rebase this PR\r\n- `@dependabot recreate` will recreate this PR, overwriting any edits\r\nthat have been made to it\r\n- `@dependabot merge` will merge this PR after your CI passes on it\r\n- `@dependabot squash and merge` will squash and merge this PR after\r\nyour CI passes on it\r\n- `@dependabot cancel merge` will cancel a previously requested merge\r\nand block automerging\r\n- `@dependabot reopen` will reopen this PR if it is closed\r\n- `@dependabot close` will close this PR and stop Dependabot recreating\r\nit. You can achieve the same result by closing it manually\r\n- `@dependabot show ignore conditions` will show all\r\nof the ignore conditions of the specified dependency\r\n- `@dependabot ignore this major version` will close this PR and stop\r\nDependabot creating any more for this major version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this minor version` will close this PR and stop\r\nDependabot creating any more for this minor version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this dependency` will close this PR and stop\r\nDependabot creating any more for this dependency (unless you reopen the\r\nPR or upgrade to it yourself)\r\nYou can disable automated security fix PRs for this repo from the\r\n[Security Alerts\r\npage](https://github.com/cfrome77/liquid-stats/network/alerts).\r\n\r\n
","shortMessageHtmlLink":"Bump follow-redirects from 1.15.1 to 1.15.4 (#43)"}},{"before":"e899ceb011935348b2321934bce1f37732eca878","after":"188005837ac5ce979f791344e81009e07a0a1106","ref":"refs/heads/main","pushedAt":"2024-01-21T20:06:11.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"cfrome77","name":"Chris Frome","path":"/cfrome77","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/16628337?s=80&v=4"},"commit":{"message":"Fix assets name space issue","shortMessageHtmlLink":"Fix assets name space issue"}},{"before":null,"after":"1df58e680e4c87d9a32d49b54a50f0637a8be68f","ref":"refs/heads/dependabot/npm_and_yarn/follow-redirects-1.15.4","pushedAt":"2024-01-10T03:44:20.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"Bump follow-redirects from 1.15.1 to 1.15.4\n\nBumps [follow-redirects](https://github.com/follow-redirects/follow-redirects) from 1.15.1 to 1.15.4.\n- [Release notes](https://github.com/follow-redirects/follow-redirects/releases)\n- [Commits](https://github.com/follow-redirects/follow-redirects/compare/v1.15.1...v1.15.4)\n\n---\nupdated-dependencies:\n- dependency-name: follow-redirects\n dependency-type: indirect\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"Bump follow-redirects from 1.15.1 to 1.15.4"}},{"before":"047552927dff51c4297c123ba94cb3bad2ee8998","after":"e899ceb011935348b2321934bce1f37732eca878","ref":"refs/heads/main","pushedAt":"2023-10-19T20:10:19.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"cfrome77","name":"Chris Frome","path":"/cfrome77","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/16628337?s=80&v=4"},"commit":{"message":"Update to remove console logs","shortMessageHtmlLink":"Update to remove console logs"}},{"before":"0f8e975b36813d49285850f156a9b16a49fe0409","after":null,"ref":"refs/heads/dependabot/npm_and_yarn/babel/traverse-7.23.2","pushedAt":"2023-10-19T20:08:06.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"}},{"before":"c6aca4755e3456cb596519b696c5ea7c6db27916","after":"047552927dff51c4297c123ba94cb3bad2ee8998","ref":"refs/heads/main","pushedAt":"2023-10-19T20:07:58.000Z","pushType":"pr_merge","commitsCount":2,"pusher":{"login":"cfrome77","name":"Chris Frome","path":"/cfrome77","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/16628337?s=80&v=4"},"commit":{"message":"Bump @babel/traverse from 7.18.13 to 7.23.2 (#42)\n\nBumps\r\n[@babel/traverse](https://github.com/babel/babel/tree/HEAD/packages/babel-traverse)\r\nfrom 7.18.13 to 7.23.2.\r\n
\r\nRelease notes\r\n

Sourced from @​babel/traverse's\r\nreleases.

\r\n
\r\n

v7.23.2 (2023-10-11)

\r\n

NOTE: This release also re-publishes\r\n@babel/core, even if it does not appear in the linked\r\nrelease commit.

\r\n

Thanks @​jimmydief for\r\nyour first PR!

\r\n

:bug: Bug Fix

\r\n
    \r\n
  • babel-traverse\r\n
      \r\n
    • #16033\r\nOnly evaluate own String/Number/Math methods (@​nicolo-ribaudo)
      • \r\n
    \r\n
    • \r\n
  • babel-preset-typescript\r\n
      \r\n
    • #16022\r\nRewrite .tsx extension when using\r\nrewriteImportExtensions (@​jimmydief)
      • \r\n
    \r\n
    • \r\n
  • babel-helpers\r\n
      \r\n
    • #16017\r\nFix: fallback to typeof when toString is applied to incompatible object\r\n(@​JLHwung)
      • \r\n
    \r\n
    • \r\n
  • babel-helpers,\r\nbabel-plugin-transform-modules-commonjs,\r\nbabel-runtime-corejs2, babel-runtime-corejs3,\r\nbabel-runtime\r\n
      \r\n
    • #16025\r\nAvoid override mistake in namespace imports (@​nicolo-ribaudo)
      • \r\n
    \r\n
    • \r\n
\r\n

Committers: 5

\r\n
    \r\n
  • Babel Bot (@​babel-bot)
    • \r\n
  • Huáng Jùnliàng (@​JLHwung)
    • \r\n
  • James Diefenderfer (@​jimmydief)
    • \r\n
  • Nicolò Ribaudo (@​nicolo-ribaudo)
    • \r\n
  • @​liuxingbaoyu
    • \r\n
\r\n

v7.23.1 (2023-09-25)

\r\n

Re-publishing @babel/helpers due to a publishing error\r\nin 7.23.0.

\r\n

v7.23.0 (2023-09-25)

\r\n

Thanks @​lorenzoferre\r\nand @​RajShukla1 for\r\nyour first PRs!

\r\n

:rocket: New Feature

\r\n
    \r\n
  • babel-plugin-proposal-import-wasm-source,\r\nbabel-plugin-syntax-import-source,\r\nbabel-plugin-transform-dynamic-import\r\n
      \r\n
    • #15870\r\nSupport transforming import source for wasm (@​nicolo-ribaudo)
      • \r\n
    \r\n
    • \r\n
  • babel-helper-module-transforms,\r\nbabel-helpers,\r\nbabel-plugin-proposal-import-defer,\r\nbabel-plugin-syntax-import-defer,\r\nbabel-plugin-transform-modules-commonjs,\r\nbabel-runtime-corejs2, babel-runtime-corejs3,\r\nbabel-runtime, babel-standalone\r\n
      \r\n
    • #15878\r\nImplement import defer proposal transform support (@​nicolo-ribaudo)
      • \r\n
    \r\n
    • \r\n
  • babel-generator, babel-parser,\r\nbabel-types\r\n
      \r\n
    • #15845\r\nImplement import defer parsing support (@​nicolo-ribaudo)
      • \r\n
    • #15829 Add\r\nparsing support for the "source phase imports" proposal (@​nicolo-ribaudo)
      • \r\n
    \r\n
    • \r\n
  • babel-generator,\r\nbabel-helper-module-transforms, babel-parser,\r\nbabel-plugin-transform-dynamic-import,\r\nbabel-plugin-transform-modules-amd,\r\nbabel-plugin-transform-modules-commonjs,\r\nbabel-plugin-transform-modules-systemjs,\r\nbabel-traverse, babel-types\r\n
      \r\n
    • #15682 Add\r\ncreateImportExpressions parser option (@​JLHwung)
      • \r\n
    \r\n
    • \r\n
  • babel-standalone\r\n
      \r\n
    • #15671\r\nPass through nonce to the transformed script element (@​JLHwung)
      • \r\n
    \r\n
    • \r\n
  • babel-helper-function-name,\r\nbabel-helper-member-expression-to-functions,\r\nbabel-helpers, babel-parser,\r\nbabel-plugin-proposal-destructuring-private,\r\nbabel-plugin-proposal-optional-chaining-assign,\r\nbabel-plugin-syntax-optional-chaining-assign,\r\nbabel-plugin-transform-destructuring,\r\nbabel-plugin-transform-optional-chaining,\r\nbabel-runtime-corejs2, babel-runtime-corejs3,\r\nbabel-runtime, babel-standalone,\r\nbabel-types\r\n
      \r\n
    • #15751 Add\r\nsupport for optional chain in assignments (@​nicolo-ribaudo)
      • \r\n
    \r\n
    • \r\n
  • babel-helpers,\r\nbabel-plugin-proposal-decorators\r\n
      \r\n
    • #15895\r\nImplement the "decorator metadata" proposal (@​nicolo-ribaudo)
      • \r\n
    \r\n
    • \r\n
  • babel-traverse, babel-types\r\n
      \r\n
    • #15893 Add\r\nt.buildUndefinedNode (@​liuxingbaoyu)
      • \r\n
    \r\n
    • \r\n
  • babel-preset-typescript
    • \r\n
\r\n\r\n
\r\n

... (truncated)

\r\n
\r\n
\r\nChangelog\r\n

Sourced from @​babel/traverse's\r\nchangelog.

\r\n
\r\n

v7.23.2 (2023-10-11)

\r\n

:bug: Bug Fix

\r\n
    \r\n
  • babel-traverse\r\n
      \r\n
    • #16033\r\nOnly evaluate own String/Number/Math methods (@​nicolo-ribaudo)
      • \r\n
    \r\n
    • \r\n
  • babel-preset-typescript\r\n
      \r\n
    • #16022\r\nRewrite .tsx extension when using\r\nrewriteImportExtensions (@​jimmydief)
      • \r\n
    \r\n
    • \r\n
  • babel-helpers\r\n
      \r\n
    • #16017\r\nFix: fallback to typeof when toString is applied to incompatible object\r\n(@​JLHwung)
      • \r\n
    \r\n
    • \r\n
  • babel-helpers,\r\nbabel-plugin-transform-modules-commonjs,\r\nbabel-runtime-corejs2, babel-runtime-corejs3,\r\nbabel-runtime\r\n
      \r\n
    • #16025\r\nAvoid override mistake in namespace imports (@​nicolo-ribaudo)
      • \r\n
    \r\n
    • \r\n
\r\n

v7.23.0 (2023-09-25)

\r\n

:rocket: New Feature

\r\n
    \r\n
  • babel-plugin-proposal-import-wasm-source,\r\nbabel-plugin-syntax-import-source,\r\nbabel-plugin-transform-dynamic-import\r\n
      \r\n
    • #15870\r\nSupport transforming import source for wasm (@​nicolo-ribaudo)
      • \r\n
    \r\n
    • \r\n
  • babel-helper-module-transforms,\r\nbabel-helpers,\r\nbabel-plugin-proposal-import-defer,\r\nbabel-plugin-syntax-import-defer,\r\nbabel-plugin-transform-modules-commonjs,\r\nbabel-runtime-corejs2, babel-runtime-corejs3,\r\nbabel-runtime, babel-standalone\r\n
      \r\n
    • #15878\r\nImplement import defer proposal transform support (@​nicolo-ribaudo)
      • \r\n
    \r\n
    • \r\n
  • babel-generator, babel-parser,\r\nbabel-types\r\n
      \r\n
    • #15845\r\nImplement import defer parsing support (@​nicolo-ribaudo)
      • \r\n
    • #15829 Add\r\nparsing support for the "source phase imports" proposal (@​nicolo-ribaudo)
      • \r\n
    \r\n
    • \r\n
  • babel-generator,\r\nbabel-helper-module-transforms, babel-parser,\r\nbabel-plugin-transform-dynamic-import,\r\nbabel-plugin-transform-modules-amd,\r\nbabel-plugin-transform-modules-commonjs,\r\nbabel-plugin-transform-modules-systemjs,\r\nbabel-traverse, babel-types\r\n
      \r\n
    • #15682 Add\r\ncreateImportExpressions parser option (@​JLHwung)
      • \r\n
    \r\n
    • \r\n
  • babel-standalone\r\n
      \r\n
    • #15671\r\nPass through nonce to the transformed script element (@​JLHwung)
      • \r\n
    \r\n
    • \r\n
  • babel-helper-function-name,\r\nbabel-helper-member-expression-to-functions,\r\nbabel-helpers, babel-parser,\r\nbabel-plugin-proposal-destructuring-private,\r\nbabel-plugin-proposal-optional-chaining-assign,\r\nbabel-plugin-syntax-optional-chaining-assign,\r\nbabel-plugin-transform-destructuring,\r\nbabel-plugin-transform-optional-chaining,\r\nbabel-runtime-corejs2, babel-runtime-corejs3,\r\nbabel-runtime, babel-standalone,\r\nbabel-types\r\n
      \r\n
    • #15751 Add\r\nsupport for optional chain in assignments (@​nicolo-ribaudo)
      • \r\n
    \r\n
    • \r\n
  • babel-helpers,\r\nbabel-plugin-proposal-decorators\r\n
      \r\n
    • #15895\r\nImplement the "decorator metadata" proposal (@​nicolo-ribaudo)
      • \r\n
    \r\n
    • \r\n
  • babel-traverse, babel-types\r\n
      \r\n
    • #15893 Add\r\nt.buildUndefinedNode (@​liuxingbaoyu)
      • \r\n
    \r\n
    • \r\n
  • babel-preset-typescript\r\n
      \r\n
    • #15913 Add\r\nrewriteImportExtensions option to TS preset (@​nicolo-ribaudo)
      • \r\n
    \r\n
    • \r\n
  • babel-parser\r\n
      \r\n
    • #15896\r\nAllow TS tuples to have both labeled and unlabeled elements (@​yukukotani)
      • \r\n
    \r\n
    • \r\n
\r\n

:bug: Bug Fix

\r\n
    \r\n
  • babel-plugin-transform-block-scoping\r\n
      \r\n
    • #15962\r\nfix: transform-block-scoping captures the variables of the\r\nmethod in the loop (@​liuxingbaoyu)
      • \r\n
    \r\n
    • \r\n
\r\n

:nail_care: Polish

\r\n
    \r\n
  • babel-traverse\r\n
      \r\n
    • #15797\r\nExpand evaluation of global built-ins in @babel/traverse\r\n(@​lorenzoferre)
      • \r\n
    \r\n
    • \r\n
  • babel-plugin-proposal-explicit-resource-management\r\n
      \r\n
    • #15985\r\nImprove source maps for blocks with using declarations (@​nicolo-ribaudo)
      • \r\n
    \r\n
    • \r\n
\r\n

:microscope: Output optimization

\r\n
    \r\n
  • babel-core,\r\nbabel-helper-module-transforms,\r\nbabel-plugin-transform-async-to-generator,\r\nbabel-plugin-transform-classes,\r\nbabel-plugin-transform-dynamic-import,\r\nbabel-plugin-transform-function-name,\r\nbabel-plugin-transform-modules-amd,\r\nbabel-plugin-transform-modules-commonjs,\r\nbabel-plugin-transform-modules-umd,\r\nbabel-plugin-transform-parameters,\r\nbabel-plugin-transform-react-constant-elements,\r\nbabel-plugin-transform-react-inline-elements,\r\nbabel-plugin-transform-runtime,\r\nbabel-plugin-transform-typescript,\r\nbabel-preset-env\r\n
      \r\n
    • #15984\r\nInline exports.XXX = update in simple variable declarations\r\n(@​nicolo-ribaudo)
      • \r\n
    \r\n
    • \r\n
\r\n

v7.22.20 (2023-09-16)

\r\n\r\n
\r\n

... (truncated)

\r\n
\r\n
\r\nCommits\r\n
    \r\n
  • b4b9942\r\nv7.23.2
    • \r\n
  • b13376b\r\nOnly evaluate own String/Number/Math methods (#16033)
    • \r\n
  • ca58ec1\r\nv7.23.0
    • \r\n
  • 0f333da\r\nAdd createImportExpressions parser option (#15682)
    • \r\n
  • 3744545\r\nFix linting
    • \r\n
  • c7e6806\r\nAdd t.buildUndefinedNode (#15893)
    • \r\n
  • 38ee8b4\r\nExpand evaluation of global built-ins in @babel/traverse\r\n(#15797)
    • \r\n
  • 9f3dfd9\r\nv7.22.20
    • \r\n
  • 3ed28b2\r\nFully support || and && in\r\npluginToggleBooleanFlag (#15961)
    • \r\n
  • 77b0d73\r\nv7.22.19
    • \r\n
  • Additional commits viewable in compare\r\nview
    • \r\n
\r\n
\r\n
\r\n\r\n\r\n[![Dependabot compatibility\r\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=@babel/traverse&package-manager=npm_and_yarn&previous-version=7.18.13&new-version=7.23.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\r\n\r\nDependabot will resolve any conflicts with this PR as long as you don't\r\nalter it yourself. You can also trigger a rebase manually by commenting\r\n`@dependabot rebase`.\r\n\r\n[//]: # (dependabot-automerge-start)\r\n[//]: # (dependabot-automerge-end)\r\n\r\n---\r\n\r\n
\r\nDependabot commands and options\r\n
\r\n\r\nYou can trigger Dependabot actions by commenting on this PR:\r\n- `@dependabot rebase` will rebase this PR\r\n- `@dependabot recreate` will recreate this PR, overwriting any edits\r\nthat have been made to it\r\n- `@dependabot merge` will merge this PR after your CI passes on it\r\n- `@dependabot squash and merge` will squash and merge this PR after\r\nyour CI passes on it\r\n- `@dependabot cancel merge` will cancel a previously requested merge\r\nand block automerging\r\n- `@dependabot reopen` will reopen this PR if it is closed\r\n- `@dependabot close` will close this PR and stop Dependabot recreating\r\nit. You can achieve the same result by closing it manually\r\n- `@dependabot show ignore conditions` will show all\r\nof the ignore conditions of the specified dependency\r\n- `@dependabot ignore this major version` will close this PR and stop\r\nDependabot creating any more for this major version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this minor version` will close this PR and stop\r\nDependabot creating any more for this minor version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this dependency` will close this PR and stop\r\nDependabot creating any more for this dependency (unless you reopen the\r\nPR or upgrade to it yourself)\r\nYou can disable automated security fix PRs for this repo from the\r\n[Security Alerts\r\npage](https://github.com/cfrome77/liquid-stats/network/alerts).\r\n\r\n
","shortMessageHtmlLink":"Bump @babel/traverse from 7.18.13 to 7.23.2 (#42)"}},{"before":null,"after":"0f8e975b36813d49285850f156a9b16a49fe0409","ref":"refs/heads/dependabot/npm_and_yarn/babel/traverse-7.23.2","pushedAt":"2023-10-18T02:08:11.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"Bump @babel/traverse from 7.18.13 to 7.23.2\n\nBumps [@babel/traverse](https://github.com/babel/babel/tree/HEAD/packages/babel-traverse) from 7.18.13 to 7.23.2.\n- [Release notes](https://github.com/babel/babel/releases)\n- [Changelog](https://github.com/babel/babel/blob/main/CHANGELOG.md)\n- [Commits](https://github.com/babel/babel/commits/v7.23.2/packages/babel-traverse)\n\n---\nupdated-dependencies:\n- dependency-name: \"@babel/traverse\"\n dependency-type: indirect\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"Bump @babel/traverse from 7.18.13 to 7.23.2"}},{"before":"e7b564c01701407ec10c7ac8e5c71d875b2dc134","after":null,"ref":"refs/heads/dependabot/npm_and_yarn/socket.io-parser-and-socket.io-4.2.3","pushedAt":"2023-09-03T21:53:33.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"}},{"before":"a356dbe38769f2df1300fd3cd2da845b48500c57","after":"c6aca4755e3456cb596519b696c5ea7c6db27916","ref":"refs/heads/main","pushedAt":"2023-09-03T21:53:26.000Z","pushType":"pr_merge","commitsCount":2,"pusher":{"login":"cfrome77","name":"Chris Frome","path":"/cfrome77","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/16628337?s=80&v=4"},"commit":{"message":"Bump socket.io-parser and socket.io (#41)\n\nBumps [socket.io-parser](https://github.com/socketio/socket.io-parser)\r\nand [socket.io](https://github.com/socketio/socket.io). These\r\ndependencies needed to be updated together.\r\nUpdates `socket.io-parser` from 4.0.5 to 4.2.3\r\n
\r\nRelease notes\r\n

Sourced from socket.io-parser's\r\nreleases.

\r\n
\r\n

4.2.3

\r\n

:warning: This release contains an important security fix\r\n:warning:

\r\n

A malicious client could send a specially crafted HTTP request,\r\ntriggering an uncaught exception and killing the Node.js process:

\r\n
TypeError: Cannot convert object to primitive value\r\n       at Socket.emit (node:events:507:25)\r\n       at .../node_modules/socket.io/lib/socket.js:531:14\r\n
\r\n

Please upgrade as soon as possible.

\r\n

Bug Fixes

\r\n
    \r\n
  • check the format of the event name (3b78117)
    • \r\n
\r\n

Links

\r\n
    \r\n
  • Diff: https://github.com/socketio/socket.io-parser/compare/4.2.2...4.2.3
    • \r\n
\r\n

4.2.2

\r\n

Bug Fixes

\r\n
    \r\n
  • calling destroy() should clear all internal state (22c42e3)
    • \r\n
  • do not modify the input packet upon encoding (ae8dd88)
    • \r\n
\r\n

Links

\r\n
    \r\n
  • Diff: https://github.com/socketio/socket.io-parser/compare/4.2.1...4.2.2
    • \r\n
\r\n

4.2.1

\r\n

Bug Fixes

\r\n
    \r\n
  • check the format of the index of each attachment (b5d0cb7)
    • \r\n
\r\n

Links

\r\n
    \r\n
  • Diff: https://github.com/socketio/socket.io-parser/compare/4.2.0...4.2.1
    • \r\n
\r\n

4.2.0

\r\n

Features

\r\n
    \r\n
  • allow the usage of custom replacer and reviver (#112)\r\n(b08bc1a)
    • \r\n
\r\n

Links

\r\n
    \r\n
  • Diff: https://github.com/socketio/socket.io-parser/compare/4.1.2...4.2.0
    • \r\n
\r\n\r\n
\r\n

... (truncated)

\r\n
\r\n
\r\nChangelog\r\n

Sourced from socket.io-parser's\r\nchangelog.

\r\n
\r\n

4.2.3\r\n(2023-05-22)

\r\n

Bug Fixes

\r\n
    \r\n
  • check the format of the event name (3b78117)
    • \r\n
\r\n

4.2.2\r\n(2023-01-19)

\r\n

Bug Fixes

\r\n
    \r\n
  • calling destroy() should clear all internal state (22c42e3)
    • \r\n
  • do not modify the input packet upon encoding (ae8dd88)
    • \r\n
\r\n

3.3.3\r\n(2022-11-09)

\r\n

Bug Fixes

\r\n
    \r\n
  • check the format of the index of each attachment (fb21e42)
    • \r\n
\r\n

3.4.2\r\n(2022-11-09)

\r\n

Bug Fixes

\r\n
    \r\n
  • check the format of the index of each attachment (04d23ce)
    • \r\n
\r\n

4.2.1\r\n(2022-06-27)

\r\n

Bug Fixes

\r\n
    \r\n
  • check the format of the index of each attachment (b5d0cb7)
    • \r\n
\r\n
\r\n
\r\n
\r\nCommits\r\n
    \r\n
  • b6c824f\r\nchore(release): 4.2.3
    • \r\n
  • dcc70d9\r\nrefactor: export typescript declarations for the commonjs build
    • \r\n
  • 3b78117\r\nfix: check the format of the event name
    • \r\n
  • 0841bd5\r\nchore: bump ua-parser-js from 1.0.32 to 1.0.33 (#121)
    • \r\n
  • 28dd668\r\nchore(release): 4.2.2
    • \r\n
  • 22c42e3\r\nfix: calling destroy() should clear all internal state
    • \r\n
  • ae8dd88\r\nfix: do not modify the input packet upon encoding
    • \r\n
  • 9143aa4\r\nchore: update browserslist
    • \r\n
  • 194a9b7\r\nci: migrate from zuul to webdriver.io
    • \r\n
  • a9758da\r\nci: update actions in GitHub Actions workflows (#117)
    • \r\n
  • Additional commits viewable in compare\r\nview
    • \r\n
\r\n
\r\n
\r\n\r\nUpdates `socket.io` from 4.5.1 to 4.6.1\r\n
\r\nRelease notes\r\n

Sourced from socket.io's\r\nreleases.

\r\n
\r\n

4.6.1

\r\n

Bug Fixes

\r\n
    \r\n
  • properly handle manually created dynamic namespaces (0d0a7a2)
    • \r\n
  • types: fix nodenext module resolution compatibility\r\n(#4625)\r\n(d0b22c6)
    • \r\n
\r\n

Links

\r\n
    \r\n
  • Diff: https://github.com/socketio/socket.io/compare/4.6.0...4.6.1
    • \r\n
  • Client release: 4.6.1
    • \r\n
  • engine.io@~6.4.1\r\n(diff)
    • \r\n
  • ws@~8.11.0\r\n(no change)
    • \r\n
\r\n

4.6.0

\r\n

Bug Fixes

\r\n
    \r\n
  • add timeout method to remote socket (#4558)\r\n(0c0eb00)
    • \r\n
  • typings: properly type emits with timeout (f3ada7d)
    • \r\n
\r\n

Features

\r\n

Promise-based acknowledgements

\r\n

This commit adds some syntactic sugar around acknowledgements:

\r\n
    \r\n
  • emitWithAck()
    • \r\n
\r\n
try {\r\nconst responses = await\r\nio.timeout(1000).emitWithAck("some-event");\r\n  console.log(responses); // one response per client\r\n} catch (e) {\r\n  // some clients did not acknowledge the event in the given delay\r\n}\r\n
io.on("connection", async (socket) => {\r\n// without timeout\r\nconst response = await socket.emitWithAck("hello",\r\n"world");
\r\n
// with a specific timeout\r\ntry {\r\nconst response = await\r\nsocket.timeout(1000).emitWithAck("hello", "world");\r\n} catch (err) {\r\n// the client did not acknowledge the event in the given delay\r\n}\r\n});\r\n

\r\n
    \r\n
  • serverSideEmitWithAck()
    • \r\n
\r\n\r\n
\r\n

... (truncated)

\r\n
\r\n
\r\nChangelog\r\n

Sourced from socket.io's\r\nchangelog.

\r\n
\r\n

4.6.1\r\n(2023-02-20)

\r\n

Bug Fixes

\r\n
    \r\n
  • properly handle manually created dynamic namespaces (0d0a7a2)
    • \r\n
  • types: fix nodenext module resolution compatibility\r\n(#4625)\r\n(d0b22c6)
    • \r\n
\r\n

Dependencies

\r\n
    \r\n
  • engine.io@~6.4.0\r\n(no change)
    • \r\n
  • ws@~8.11.0\r\n(no change)
    • \r\n
\r\n

4.6.0\r\n(2023-02-07)

\r\n

Bug Fixes

\r\n
    \r\n
  • add timeout method to remote socket (#4558)\r\n(0c0eb00)
    • \r\n
  • typings: properly type emits with timeout (f3ada7d)
    • \r\n
\r\n

Features

\r\n

Promise-based acknowledgements

\r\n

This commit adds some syntactic sugar around acknowledgements:

\r\n
    \r\n
  • emitWithAck()
    • \r\n
\r\n
try {\r\nconst responses = await\r\nio.timeout(1000).emitWithAck("some-event");\r\n  console.log(responses); // one response per client\r\n} catch (e) {\r\n  // some clients did not acknowledge the event in the given delay\r\n}\r\n
io.on("connection", async (socket) => {\r\n// without timeout\r\nconst response = await socket.emitWithAck("hello",\r\n"world");
\r\n
// with a specific timeout\r\ntry {\r\nconst response = await\r\nsocket.timeout(1000).emitWithAck("hello", "world");\r\n} catch (err) {\r\n// the client did not acknowledge the event in the given delay\r\n</tr></table>\r\n

\r\n
\r\n

... (truncated)

\r\n
\r\n
\r\nCommits\r\n
    \r\n
  • 7952312\r\nchore(release): 4.6.1
    • \r\n
  • 0d0a7a2\r\nfix: properly handle manually created dynamic namespaces
    • \r\n
  • 2a8565f\r\nrefactor: catch errors when trying to restore the connection state
    • \r\n
  • d0b22c6\r\nfix(types): fix nodenext module resolution compatibility (#4625)
    • \r\n
  • e71f3d7\r\ndocs: minor style fix (#4619)
    • \r\n
  • a2e5d1f\r\nchore(release): 4.6.0
    • \r\n
  • d8143cc\r\nrefactor: do not persist session if connection state recovery if\r\ndisabled
    • \r\n
  • b2dd7cf\r\nchore: bump engine.io to version 6.4.0
    • \r\n
  • 3734b74\r\nrevert: feat: expose current offset to allow deduplication
    • \r\n
  • 8aa9499\r\nfeat: add description to the disconnecting and disconnect events (#4622)
    • \r\n
  • Additional commits viewable in compare\r\nview
    • \r\n
\r\n
\r\n
\r\n\r\n\r\nDependabot will resolve any conflicts with this PR as long as you don't\r\nalter it yourself. You can also trigger a rebase manually by commenting\r\n`@dependabot rebase`.\r\n\r\n[//]: # (dependabot-automerge-start)\r\n[//]: # (dependabot-automerge-end)\r\n\r\n---\r\n\r\n
\r\nDependabot commands and options\r\n
\r\n\r\nYou can trigger Dependabot actions by commenting on this PR:\r\n- `@dependabot rebase` will rebase this PR\r\n- `@dependabot recreate` will recreate this PR, overwriting any edits\r\nthat have been made to it\r\n- `@dependabot merge` will merge this PR after your CI passes on it\r\n- `@dependabot squash and merge` will squash and merge this PR after\r\nyour CI passes on it\r\n- `@dependabot cancel merge` will cancel a previously requested merge\r\nand block automerging\r\n- `@dependabot reopen` will reopen this PR if it is closed\r\n- `@dependabot close` will close this PR and stop Dependabot recreating\r\nit. You can achieve the same result by closing it manually\r\n- `@dependabot ignore this major version` will close this PR and stop\r\nDependabot creating any more for this major version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this minor version` will close this PR and stop\r\nDependabot creating any more for this minor version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this dependency` will close this PR and stop\r\nDependabot creating any more for this dependency (unless you reopen the\r\nPR or upgrade to it yourself)\r\nYou can disable automated security fix PRs for this repo from the\r\n[Security Alerts\r\npage](https://github.com/cfrome77/liquid-stats/network/alerts).\r\n\r\n
","shortMessageHtmlLink":"Bump socket.io-parser and socket.io (#41)"}},{"before":null,"after":"e7b564c01701407ec10c7ac8e5c71d875b2dc134","ref":"refs/heads/dependabot/npm_and_yarn/socket.io-parser-and-socket.io-4.2.3","pushedAt":"2023-05-23T23:16:12.788Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"Bump socket.io-parser and socket.io\n\nBumps [socket.io-parser](https://github.com/socketio/socket.io-parser) and [socket.io](https://github.com/socketio/socket.io). These dependencies needed to be updated together.\n\nUpdates `socket.io-parser` from 4.0.5 to 4.2.3\n- [Release notes](https://github.com/socketio/socket.io-parser/releases)\n- [Changelog](https://github.com/socketio/socket.io-parser/blob/main/CHANGELOG.md)\n- [Commits](https://github.com/socketio/socket.io-parser/compare/4.0.5...4.2.3)\n\nUpdates `socket.io` from 4.5.1 to 4.6.1\n- [Release notes](https://github.com/socketio/socket.io/releases)\n- [Changelog](https://github.com/socketio/socket.io/blob/main/CHANGELOG.md)\n- [Commits](https://github.com/socketio/socket.io/compare/4.5.1...4.6.1)\n\n---\nupdated-dependencies:\n- dependency-name: socket.io-parser\n dependency-type: indirect\n- dependency-name: socket.io\n dependency-type: indirect\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"Bump socket.io-parser and socket.io"}},{"before":"efb3b3d95786fa28039d7840e36d137c6ec27e51","after":null,"ref":"refs/heads/dependabot/npm_and_yarn/ua-parser-js-0.7.33","pushedAt":"2023-05-05T19:57:09.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"}},{"before":"a2a89205e240c0ee78e55e64b98d037068b07f6c","after":"a356dbe38769f2df1300fd3cd2da845b48500c57","ref":"refs/heads/main","pushedAt":"2023-05-05T19:57:01.000Z","pushType":"pr_merge","commitsCount":2,"pusher":{"login":"cfrome77","name":"Chris Frome","path":"/cfrome77","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/16628337?s=80&v=4"},"commit":{"message":"Bump ua-parser-js from 0.7.31 to 0.7.33 (#39)\n\nBumps [ua-parser-js](https://github.com/faisalman/ua-parser-js) from\r\n0.7.31 to 0.7.33.\r\n
\r\nChangelog\r\n

Sourced from ua-parser-js's\r\nchangelog.

\r\n
\r\n

Version 0.7.31 / 1.0.2

\r\n
    \r\n
  • Fix OPPO Reno A5 incorrect detection
    • \r\n
  • Fix TypeError Bug
    • \r\n
  • Use AST to extract regexes and verify them with safe-regex
    • \r\n
\r\n

Version 0.7.32 / 1.0.32

\r\n
    \r\n
  • Add new browser : DuckDuckGo, Huawei Browser, LinkedIn
    • \r\n
  • Add new OS : HarmonyOS
    • \r\n
  • Add some Huawei models
    • \r\n
  • Add Sharp Aquos TV
    • \r\n
  • Improve detection Xiaomi Mi CC9
    • \r\n
  • Fix Sony Xperia 1 III misidentified as Acer tablet
    • \r\n
  • Fix Detect Sony BRAVIA as SmartTV
    • \r\n
  • Fix Detect Xiaomi Mi TV as SmartTV
    • \r\n
  • Fix Detect Galaxy Tab S8 as tablet
    • \r\n
  • Fix WeGame mistakenly identified as WeChat
    • \r\n
  • Fix included commas in Safari / Mobile Safari version
    • \r\n
  • Increase UA_MAX_LENGTH to 350
    • \r\n
\r\n

Version 0.7.33 / 1.0.33

\r\n
    \r\n
  • Add new browser : Cobalt
    • \r\n
  • Identify Macintosh as an Apple device
    • \r\n
  • Fix ReDoS vulnerability
    • \r\n
\r\n

Version 0.8

\r\n

Version 0.8 was created by accident. This version is now deprecated\r\nand no longer maintained, please update to version 0.7 / 1.0.

\r\n
\r\n
\r\n
\r\nCommits\r\n
    \r\n
  • f2d0db0\r\nBump version 0.7.33
    • \r\n
  • a6140a1\r\nRemove unsafe regex in trim() function
    • \r\n
  • a886604\r\nFix #605\r\n- Identify Macintosh as Apple device
    • \r\n
  • b814bcd\r\nMerge pull request #606\r\nfrom rileyjshaw/patch-1
    • \r\n
  • 7f71024\r\nFix documentation
    • \r\n
  • c239ac5\r\nMerge pull request #604\r\nfrom obecerra3/master
    • \r\n
  • 8d3c2d3\r\nAdd new browser: Cobalt
    • \r\n
  • d11fc47\r\nBump version 0.7.32
    • \r\n
  • b490110\r\nMerge branch 'develop' of github.com:faisalman/ua-parser-js
    • \r\n
  • cb5da5e\r\nMerge pull request #600\r\nfrom moekm/develop
    • \r\n
  • Additional commits viewable in compare\r\nview
    • \r\n
\r\n
\r\n
\r\n\r\n\r\n[![Dependabot compatibility\r\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=ua-parser-js&package-manager=npm_and_yarn&previous-version=0.7.31&new-version=0.7.33)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\r\n\r\nYou can trigger a rebase of this PR by commenting `@dependabot rebase`.\r\n\r\n[//]: # (dependabot-automerge-start)\r\n[//]: # (dependabot-automerge-end)\r\n\r\n---\r\n\r\n
\r\nDependabot commands and options\r\n
\r\n\r\nYou can trigger Dependabot actions by commenting on this PR:\r\n- `@dependabot rebase` will rebase this PR\r\n- `@dependabot recreate` will recreate this PR, overwriting any edits\r\nthat have been made to it\r\n- `@dependabot merge` will merge this PR after your CI passes on it\r\n- `@dependabot squash and merge` will squash and merge this PR after\r\nyour CI passes on it\r\n- `@dependabot cancel merge` will cancel a previously requested merge\r\nand block automerging\r\n- `@dependabot reopen` will reopen this PR if it is closed\r\n- `@dependabot close` will close this PR and stop Dependabot recreating\r\nit. You can achieve the same result by closing it manually\r\n- `@dependabot ignore this major version` will close this PR and stop\r\nDependabot creating any more for this major version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this minor version` will close this PR and stop\r\nDependabot creating any more for this minor version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this dependency` will close this PR and stop\r\nDependabot creating any more for this dependency (unless you reopen the\r\nPR or upgrade to it yourself)\r\n- `@dependabot use these labels` will set the current labels as the\r\ndefault for future PRs for this repo and language\r\n- `@dependabot use these reviewers` will set the current reviewers as\r\nthe default for future PRs for this repo and language\r\n- `@dependabot use these assignees` will set the current assignees as\r\nthe default for future PRs for this repo and language\r\n- `@dependabot use this milestone` will set the current milestone as the\r\ndefault for future PRs for this repo and language\r\n\r\nYou can disable automated security fix PRs for this repo from the\r\n[Security Alerts\r\npage](https://github.com/cfrome77/liquid-stats/network/alerts).\r\n\r\n
> **Note**\r\n> Automatic rebases have been disabled on this pull request as it has\r\nbeen open for over 30 days.","shortMessageHtmlLink":"Bump ua-parser-js from 0.7.31 to 0.7.33 (#39)"}},{"before":"7401877da29bb4c1b75a85d6f83b630a1c9458e1","after":null,"ref":"refs/heads/dependabot/npm_and_yarn/http-cache-semantics-4.1.1","pushedAt":"2023-05-05T19:56:58.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"}},{"before":"bd8336052e9e24732ff57afe01bf1a1607444890","after":"a2a89205e240c0ee78e55e64b98d037068b07f6c","ref":"refs/heads/main","pushedAt":"2023-05-05T19:56:50.000Z","pushType":"pr_merge","commitsCount":2,"pusher":{"login":"cfrome77","name":"Chris Frome","path":"/cfrome77","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/16628337?s=80&v=4"},"commit":{"message":"Bump http-cache-semantics from 4.1.0 to 4.1.1 (#40)\n\nBumps\r\n[http-cache-semantics](https://github.com/kornelski/http-cache-semantics)\r\nfrom 4.1.0 to 4.1.1.\r\n
\r\nCommits\r\n
    \r\n
  • 2449650\r\nUpdate mocha
    • \r\n
  • 560b2d8\r\nDon't use regex to trim whitespace
    • \r\n
  • b1bdb92\r\nRemove linting package zoo
    • \r\n
  • c20dc7e\r\nCache 308
    • \r\n
  • See full diff in compare\r\nview
    • \r\n
\r\n
\r\n
\r\n\r\n\r\n[![Dependabot compatibility\r\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=http-cache-semantics&package-manager=npm_and_yarn&previous-version=4.1.0&new-version=4.1.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\r\n\r\nDependabot will resolve any conflicts with this PR as long as you don't\r\nalter it yourself. You can also trigger a rebase manually by commenting\r\n`@dependabot rebase`.\r\n\r\n[//]: # (dependabot-automerge-start)\r\n[//]: # (dependabot-automerge-end)\r\n\r\n---\r\n\r\n
\r\nDependabot commands and options\r\n
\r\n\r\nYou can trigger Dependabot actions by commenting on this PR:\r\n- `@dependabot rebase` will rebase this PR\r\n- `@dependabot recreate` will recreate this PR, overwriting any edits\r\nthat have been made to it\r\n- `@dependabot merge` will merge this PR after your CI passes on it\r\n- `@dependabot squash and merge` will squash and merge this PR after\r\nyour CI passes on it\r\n- `@dependabot cancel merge` will cancel a previously requested merge\r\nand block automerging\r\n- `@dependabot reopen` will reopen this PR if it is closed\r\n- `@dependabot close` will close this PR and stop Dependabot recreating\r\nit. You can achieve the same result by closing it manually\r\n- `@dependabot ignore this major version` will close this PR and stop\r\nDependabot creating any more for this major version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this minor version` will close this PR and stop\r\nDependabot creating any more for this minor version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this dependency` will close this PR and stop\r\nDependabot creating any more for this dependency (unless you reopen the\r\nPR or upgrade to it yourself)\r\n- `@dependabot use these labels` will set the current labels as the\r\ndefault for future PRs for this repo and language\r\n- `@dependabot use these reviewers` will set the current reviewers as\r\nthe default for future PRs for this repo and language\r\n- `@dependabot use these assignees` will set the current assignees as\r\nthe default for future PRs for this repo and language\r\n- `@dependabot use this milestone` will set the current milestone as the\r\ndefault for future PRs for this repo and language\r\n\r\nYou can disable automated security fix PRs for this repo from the\r\n[Security Alerts\r\npage](https://github.com/cfrome77/liquid-stats/network/alerts).\r\n\r\n
","shortMessageHtmlLink":"Bump http-cache-semantics from 4.1.0 to 4.1.1 (#40)"}}],"hasNextPage":false,"hasPreviousPage":false,"activityType":"all","actor":null,"timePeriod":"all","sort":"DESC","perPage":30,"cursor":"djE6ks8AAAAEZpLb7gA","startCursor":null,"endCursor":null}},"title":"Activity · cfrome77/liquid-stats"}